SecBus: operating system controlled hierarchical page-based memory bus protection

Authors:
Lifeng Su;Stephan Courcambeck;Pierre Guillemin;Christian Schwarz;Renaud Pacalet
Affiliations:
STMicroelectronics, Rousset, France;STMicroelectronics, Rousset, France;STMicroelectronics, Rousset, France;STMicroelectronics, Rousset, France;TELECOM ParisTech, Sophia Antipolis, France
Venue:
Proceedings of the Conference on Design, Automation and Test in Europe
Year:
2009

Citing 10
Cited 1

Cipher Instruction Search Attack on the Bus-Encryption Security Microcontroller DS5002FP

IEEE Transactions on Computers
Architectural support for copy and tamper resistant software

ASPLOS IX Proceedings of the ninth international conference on Architectural support for programming languages and operating systems
Keeping Secrets in Hardware: The Microsoft Xbox Case Study

CHES '02 Revised Papers from the 4th International Workshop on Cryptographic Hardware and Embedded Systems
AEGIS: architecture for tamper-evident and tamper-resistant processing

ICS '03 Proceedings of the 17th annual international conference on Supercomputing
Caches and Hash Trees for Efficient Memory Integrity Verification

HPCA '03 Proceedings of the 9th International Symposium on High-Performance Computer Architecture
Specifying and Verifying Hardware for Tamper-Resistant Software

SP '03 Proceedings of the 2003 IEEE Symposium on Security and Privacy
HIDE: an infrastructure for efficiently protecting information leakage on the address bus

ASPLOS XI Proceedings of the 11th international conference on Architectural support for programming languages and operating systems
CryptoPage: An Efficient Secure Architecture with Memory Encryption, Integrity and Information Leakage Protection

ACSAC '06 Proceedings of the 22nd Annual Computer Security Applications Conference
Operating system controlled processor-memory bus encryption

Proceedings of the conference on Design, automation and test in Europe
TEC-Tree: A Low-Cost, Parallelizable Tree for Efficient Defense Against Memory Replay Attacks

CHES '07 Proceedings of the 9th international workshop on Cryptographic Hardware and Embedded Systems

Hardware-enforced Protection against Software Reverse-Engineering based on an Instruction Set Encoding

Proceedings of ACM SIGPLAN on Program Protection and Reverse Engineering Workshop 2014

Quantified Score

Hi-index	0.00

Visualization

Abstract

This paper presents a new two-levels page-based memory bus protection scheme. A trusted Operating System drives a hardware cryptographic unit and manages security contexts for each protected memory page. The hardware unit is located between the internal system bus and the memory controller. It protects the integrity and confidentiality of selected memory pages. For better acceptability the processor (CPU) architecture and the software application level are unmodified. The impact of the security on cost and performance is optimized by several algorithmic and hardware techniques and by a differentiated handling of memory pages, depending on their characteristics.